$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: qwxYNTh6xKdp2uATuIFR5O42e+8ng5z76v1e121JSWc= Subject key identifier: 76:53:51:E7:B1:48:98:61:E9:15:A7:7A:38:C2:75:D7:D1:1D:C5:BE Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 1576B82B67DF272161FEC7EBA3A17E466324BF36 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 23 Jul 2025 03:02:51 +0000 ROA not before: Wed 23 Jul 2025 02:57:51 +0000 ROA not after: Wed 22 Jul 2026 03:02:51 +0000 asID: 131749 IP address blocks: 2402:be80::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 19:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:76:b8:2b:67:df:27:21:61:fe:c7:eb:a3:a1:7e:46:63:24:bf:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 23 02:57:51 2025 GMT Not After : Jul 22 03:02:51 2026 GMT Subject: CN=765351E7B1489861E915A77A38C275D7D11DC5BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:74:13:1b:54:a9:8e:79:20:cd:e8:2a:b9:c9: 81:c9:a1:e8:99:b9:6c:06:78:5d:38:42:d3:52:32: fe:30:7f:fc:cd:c9:b8:1c:54:b6:af:9c:f8:3e:7c: ef:73:82:9b:d6:ea:13:08:d4:d0:a5:79:9a:d9:4b: b1:64:e6:03:78:63:5f:ac:4e:ee:13:f2:94:37:40: 10:b3:d7:72:93:c8:9e:d0:e6:7e:7a:7c:a3:89:75: 8b:f6:89:85:4b:29:25:9f:bc:5b:4d:64:fb:f9:f7: 0d:5f:d1:3a:1f:aa:77:cc:3e:8d:8f:7a:ab:39:af: 8e:ea:02:45:12:30:a2:27:ca:ff:00:37:9a:55:9d: ef:e2:f2:56:29:10:1c:6c:ce:5c:00:75:2d:32:34: 43:34:f1:d3:7d:b1:5d:bb:46:4b:92:7a:63:eb:33: de:7c:1e:37:bb:55:d1:f1:ac:50:28:66:ef:aa:b9: f0:19:7d:3f:cc:e4:a2:22:a2:2f:64:44:e2:72:06: 36:63:ae:32:0e:05:c3:c3:1f:0a:9d:83:8f:a6:d6: bd:83:86:97:bf:2b:d9:ac:59:35:5f:68:38:27:9b: eb:0b:50:92:92:7e:fd:a4:10:cd:da:8e:24:03:4e: 15:06:d7:e4:b2:1a:ef:fe:c6:55:fc:c1:9c:1c:a4: 55:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:53:51:E7:B1:48:98:61:E9:15:A7:7A:38:C2:75:D7:D1:1D:C5:BE X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/34 Signature Algorithm: sha256WithRSAEncryption 3f:b5:6c:54:b0:ab:39:1c:95:c1:7e:db:43:16:e5:25:46:4a: 93:33:9e:68:99:31:a5:41:0e:4c:1b:0b:4a:47:40:6c:bb:0f: f2:07:59:8c:2c:14:c1:35:42:65:df:f4:e2:9c:d1:35:18:b9: 96:a1:6b:06:c8:66:4b:0a:24:7e:9a:a8:89:c3:99:11:1c:ae: 8d:92:ea:cc:64:b9:2d:b1:dc:f9:27:80:6d:9a:28:84:26:c4: 97:42:90:6a:d6:ab:3f:23:54:12:2a:24:37:43:72:d1:b1:4a: 0d:e3:a4:fb:4f:92:4b:0e:2b:1b:7c:8e:66:01:3d:f7:19:c6: 57:ef:49:5f:c0:68:d8:14:b3:6a:14:34:1b:7f:8d:5f:a9:72: 3a:7b:82:cb:9f:d1:83:6b:86:55:5e:0d:79:b9:69:e8:12:ee: a2:6e:f0:b3:24:db:3d:2b:cb:f4:b1:8f:ce:ac:18:d4:18:b0: a4:fa:ab:39:6b:de:d9:ca:a2:61:e6:db:1b:ad:24:a1:e9:01: f9:0e:85:dc:fe:53:42:f0:f2:3d:fc:77:ef:e4:89:82:5a:d4: ff:1c:72:77:a1:f2:51:f6:2a:ec:51:ea:39:e5:9b:bc:21:11: 2a:31:0c:99:bf:85:94:da:2b:0a:72:6d:a5:ac:05:8f:88:27: f2:ca:36:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFXa4K2ffJyFh/sfro6F+RmMkvzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA3MjMwMjU3NTFaFw0yNjA3MjIwMzAyNTFaMDMxMTAvBgNV BAMTKDc2NTM1MUU3QjE0ODk4NjFFOTE1QTc3QTM4QzI3NUQ3RDExREM1QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsdBMbVKmOeSDN6Cq5yYHJoeiZ uWwGeF04QtNSMv4wf/zNybgcVLavnPg+fO9zgpvW6hMI1NCleZrZS7Fk5gN4Y1+s Tu4T8pQ3QBCz13KTyJ7Q5n56fKOJdYv2iYVLKSWfvFtNZPv59w1f0TofqnfMPo2P eqs5r47qAkUSMKInyv8AN5pVne/i8lYpEBxszlwAdS0yNEM08dN9sV27RkuSemPr M958Hje7VdHxrFAoZu+qufAZfT/M5KIioi9kROJyBjZjrjIOBcPDHwqdg4+m1r2D hpe/K9msWTVfaDgnm+sLUJKSfv2kEM3ajiQDThUG1+SyGu/+xlX8wZwcpFXBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdlNR57FImGHpFad6OMJ119Edxb4wHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzQy ZDMzMzQyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQCvoAAMA0GCSqG SIb3DQEBCwUAA4IBAQA/tWxUsKs5HJXBfttDFuUlRkqTM55omTGlQQ5MGwtKR0Bs uw/yB1mMLBTBNUJl3/TinNE1GLmWoWsGyGZLCiR+mqiJw5kRHK6NkurMZLktsdz5 J4BtmiiEJsSXQpBq1qs/I1QSKiQ3Q3LRsUoN46T7T5JLDisbfI5mAT33GcZX70lf wGjYFLNqFDQbf41fqXI6e4LLn9GDa4ZVXg15uWnoEu6ibvCzJNs9K8v0sY/OrBjU GLCk+qs5a97ZyqJh5tsbrSSh6QH5DoXc/lNC8PI9/Hfv5ImCWtT/HHJ3ofJR9irs Ueo55Zu8IREqMQyZv4WU2isKcm2lrAWPiCfyyjZ1 -----END CERTIFICATE-----Generated at Mon Nov 17 04:12:25 2025 by rpki-client